Case Studies

Learn how SecureKey Technologies' online authentication solution enabled choice and convenience for online users, freeing them from needing yet another credential and another password for Government of Canada sites.

Social media is an invaluable tool, but we need to start building it with more sophisticated privacy built in. It has allowed us to enjoy a truly global world, but those connections can come at a cost. Social media will be even more prevalent in our children’s lives. We have the obligation today to build the more secure social media networks of tomorrow.

We're living in the age of the data breach. Yet, most of us have never really thought about what a stolen identity might mean. Here are some important things to know about your online privacy, the risk of dealing with cybercrime and how to protect your digital identity.

In a world where online identity theft has become more common than traditional theft, it’s more important than ever to know how to protect yourself in the cyber world. As part of SecureKey’s “Did You Know?” series, this infographic captures several eye-opening facts about data breaches and identity theft, and offers best practices for securely accessing online services.

The bring-your-own-credential (BYOC) approach to identity management has seen early success across several social networks and online applications. But before deploying this promising tactic in more sensitive settings, government, healthcare and ﬁnancial service organizations will naturally need a few questions answered.

Every organization operating a high-value consumer-facing website must come to grips with a stark fact: traditional consumer identity and access management (IAM) systems and methods are failing to scale to required levels of both security and ease of use.

“Rather than trying to construct trust out of nothing…let’s build on the success of what consumers already understand and what’s already common business practice, but adapt it so it works better online…” says Andre Boysen, CIO of SecureKey.

Trust Framework

The SecureKey Concierge™ service is powered by a Trust Framework that enhances the security of online authentication transactions between Users and Relying Parties (RPs) through a network of trusted Credential Providers (CPs)

Webinars & Videos

We can share our organs to save a life when we die, but we can’t share our healthcare data to save many lives while we’re alive. Andre Boysen shares why digital identity grids, much like the electrical grids of the 1870’s, are poised to change everything we know about protecting and sharing our personal and important information – and will provide the first chance for each of us to become true healthcare heroes.

Greg Wolfond, CEO of SecureKey, speaks to Anthony Lacavera about how we are developing technologies around identity to make it easier for consumers to validate who they are. Greg also shares what role he believes regulation plays in data security and how SecureKey is working to get triple blind privacy widely adopted as the industry standard.

In January of 2018, SecureKey got together with a group of leading organizations to help support the International Council on Global Privacy and Security by Design. The event, A Privacy Affair, was a great success and raised much needed awareness for such an important cause. Watch this short video that sums it all up!

Greg Wolfond, SecureKey Technologies, Rizwan Khalfan, TD, and Ian Bailey, Government of British Columbia will discuss the value of creating an online identity ecosystem through strong cross-industry partnerships and shared fundamentals, consumers’ trusted relationships with vendors and new technologies like blockchain.

Canada has taken a unique path in the world on digital identity. Governments, telcos, banks, and the broader service delivery economy recognize that digital identity is bigger than any single organization. The collaborative approach has allowed Canada to rapidly adopt new technologies such as blockchain to drive successes that have yet to happen for other countries. The world is looking on and wants to know the secrets.

Today, Canadians use a service called SecureKey Concierge for eGov, healthcare and some private sector services. It is backed by all the large banks in Canada, so users can access services using the same userid and password they use everyday for online banking. This is supported by a triple-blind privacy model so that government cannot see the user banking details, the bank cannot see the online destination the user is visiting, and SecureKey Concierge service does not know the identity of the user. So, none of the transaction participants has a complete picture of the user journey.

The problem for eGovernment service delivery is it is caught in negative spiral with users when it comes to online access. Learn what we mean by a negative spiral in this video narrated by Andre Boysen, Chief Identity Officer at SecureKey.

In what might be the most dramatic lapse of Internet security in history, the Heartbleed bug has shaken every corner of the web. Heartbleed threatens a web services in a wide variety of industries across the globe - 2/3 of the websites on the Internet used the compromised the OpenSSL technology.

Governments and citizens both benefit when services are delivered online. But the adoption of online government services is often constrained by challenges with user registration and authentication. The usual problems of password security, forgotten passwords and sign-up abandonment are heightened for government services - they need to know its you to deliver the service. High credential churn drives up operational costs, weakens security posture, and frustrates users who want to accomplish tasks online.

In the year 2020, trends that are hot today, such as mCommerce, virtual money and privacy will be commonplace. These disruptive topics and technologies should be examined and considered when building a digital strategy. Organizations that choose to ignore them, might find themselves behind the curve.

Mobile devices have become central to our daily lives. Whether it’s for work, pleasure or completing errands, mobile devices can do it all. Applications transform mobile devices into multi-purpose tools. However, the challenge for mobile app developers lies in engaging and gaining adoption of your app.

One of today's biggest challenges for Internet users today is the sheer number of IDs and passwords we need to manage our online life. With every single destination, users have dedicated user ID and password -- and we've kind of reached the point that that's not scalable any more. One alternative solution is to use credential federation, providing the user a smaller set of credentials to reach all of their online destinations.

SecureKey Concierge, is an innovative Credential Broker Service that allows Canadians to use their bank authentication credentials to access online services from the Government of Canada. Four of Canada’s largest banks are the initial Trusted Sign-In Partners, with other financial institutions expected to follow in the coming months.

It happens all the time. You go to log in to an online service, but forget your username and password. It’s frustrating and unfortunately, you’re not alone, as World Economic Forum estimates the average person has more than 130 online ID’s and passwords.

This paper discusses important aspects of good authentication practices, the options that organizations have available to them when attempting to balance ease-of-use with robust security, and recommendations for improving authentication.

This whitepaper reviews how and why telcos can and should play a stronger role in the identity industry, and provides a financial model for how various aspects of identity management can contribute to ARPU.

The Commission on Enhancing National Cyber Security recently published its report on securing and growing the digital economy. Amongst its priorities, the report emphasizes the need for the administration to collaborate with the private sector on defining, implementing and defending a roadmap for i) improving the security of digital networks against denial-of-service, spoofing and others attacks on users and the nation’s network infrastructure, ii) increasing the use of strong authentication to improve identity management, and iii) delivering a frictionless experience to citizens while accessing Government services.

This paper explores current issues and opportunities in emerging identity markets, and describes the rationale and technology paradigms for designing a consumer–centric, privacy-enhanced system using modern distributed architectures.

Service providers are losing more of their customers’ credentials to online thieves than at any point in history. Customer interactions are slow, awkward and filled with mistrust. And it’s all happening because we’ve been thinking about identity the wrong way.

‘Digital identity’ is becoming increasingly important to consumers in their daily lives. Coping with a growing number of usernames and passwords is a burden that deters customers from transacting digitally. The cost of maintaining accurate personal data for customers and protecting it from cyber criminals is a concern for organisations and regulators.